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Remarks 



Applicants respectfully request reconsideration of the present U.S. Patent 
application as amended herein. Claims 1, 6, 7, 10, 15, 19, 20, and 21 have been 
amended. No claims have been added or canceled. Thus, claims 1-24 are pending. 

General Comment 

It appears the Office fails to fully appreciate inventive intent. This may be due to 
lack of clarity in the claims. In order to facilitate passage to issuance, each independent 
claim series has been amended to clarify inventive intent. 

In particular, as discussed in the Background of the specification, one type of 
problem addressed by various recited embodiments is that certain security services fail 
to provide a way to de-authenticate from a security realm. For example, web servers 
are one such environment allowing a web browser to authenticate with the server, but 
once authenticated, the web browser remains authenticated until the web browser is 
closed. That is why, for example, finance web sites ask you to close web browsers as 
doing so severs the authentication, and hence access to private data. 

But, closing the browser is not always a desired solution. Thus, recited 
embodiments provide a solution for implementing automatic de-authentication in 
security environments that do not provide the de-authentication operation. Recited 
embodiments assume authentication with a web server by an appropriate client, such 
as a web browser, but it will be appreciated other clients may be used. One key 
characteristic of such clients is that the client can not maintain two authentications with 
the web server. 
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Consequently, as recited, when a second authentication is performed, this 
necessarily automatically results in de-authentication from the first security realm as 
recited. This then effectuates the desired de-authentication operation. It is respectfully 
submitted that this sort of de-authentication operation is not taught or suggested by the 
documents relied on by the Office. 

35 USC §103 

Claims 1-24 stand rejected as being obvious over Shi (US Patent No. 5,875,296) 
in view of Wood (US Patent No. 6,668,322). Applicants traverse the rejections as 
discussed below. 

As discussed above, various recited embodiments concern providing an ability to 
de-authenticate (e.g., remove authentication) from a browser that has previously 
authenticated to a web resource. As discussed in Applicant's previous response, a 
conventional browser user-id and password combination disclosed by Shi results in an 
authentication that does not expire — this is one problem discussed in the Background 
of the specification that is addressed by recited embodiments. 

The Office admits throughout the Action that Shi fails to teach claim 1's recited 
logout resource which when accessed automatically results in authentication with a 
second security realm. Hence the Office turns to another reference, this time Wood , as 
teaching this limitation. As in Applicants' previous response, the detail of applying Shi to 
recited embodiments, and the characterizations of the references is not analyzed at this 
time as such analysis is considered moot over the defects of Wood regarding recited 
embodiments. 
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In particular, the Office states Wood discloses a single sign-on being used to 
access multiple domains, and once authenticated "a user can later access (i.e. logout) 
the same or to another information resource without additional authentication." The 
Wood Abstract indicates Wood teaches that "Session credentials are used to maintain 
continuity of a persistent session across multiple accesses to one or more information 
resources." Such a single sign-on environment is not what is claimed . 

This statement by the Examiner also highlights the apparent confusion over 

inventive intent discussed above. To clarify, claim 1 has been amended to recite: 

accessing a logout resource in the first security realm, said logout resource 
configured to automatically authenticate with a second security realm such that 
accessing the logout resource results in de-authentication from the first security 
realm . 

(clarifying new language underlined). 

Since Wood, as described by the Action, provides for a single sign-on to multiple 
domains, Wood therefore cannot teach or suggest the recited claim 1 embodiment since 
Wood's single sign-on does not teach the recited automatic de-authentication from the 
first security realm on accessing the logout resource. 

Consequently, it is respectfully submitted that the suggested combination of Shi 
and Wood is unworkable, and these references, whether considered individually or one 
in view of the other, fail to render the claim 1 embodiment obvious. 

Because related limitations are present in independent claims 6, 10, 15, 19, and 
21, the suggested combination also fails for at least the reasons discussed above for 
claim 1. In particular: 
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claim 6 as amended recites " responsive to said accessing the second resource, 
automatically authenticating with a second security realm and de-authenticating with the 
first security realm"; 

claim 10 as amended recites "accessing a logout resource in the first security 
realm, said logout resource configured to automatically authenticate with a second 
security realm on accessing thereof and to de-authenticate from the first security realm"; 

claim 15 as amended recites "responsive to said accessing the second resource, 
automatically authenticating with a second security realm and de-authenticating from 
the first security realm"; 

claim 19 as amended recites "means for accessing a logout resource in the first 
security realm, said logout resource configured to automatically authenticate with a 
second security realm such that accessing the logout resource results in de- 
authentication from the first security realm"; and 

claim 21 as amended recites "responsive to said accessing the second resource, 
means for automatically authenticating with a second security realm wherein said 
authentication results in automatically de-authenticating from the first security realm." 

As discussed above with respect to claim 1 , since the Office relies on Wood as 
teaching maintaining multiple authentications, Wood therefore teaches away from the 
recited claim 6, 10, 15, 19, and 21 embodiments which, along with claim 1, all concern 
automatically de-authenticating from a first security realm due to accessing a second 
security realm. 
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Regarding claims 23 and 24, they are allowable for at least the reasons 
discussed above. However, no amendment is necessary since claim 23 already recites 
"de-authenticating from the first web server security realm based at least in part on 
accessing a second resource of a second security realm different from the first resource 
of the first security realm, so that the current security realm changes from the first 
security realm to the second security realm." As discussed above, as Wood has been 
presented to Applicants, Wood does not teach de-authentication based at least in part 
on accessing the second resource as recited in claim 23. 

Regarding dependent claims 2-5, 7-9, 11-14, 16-18, 20, 22, and 24, while these 
claims introduce additional limitations further distinguishing from the documents relied 
on by the Office, the specific rejections of these claims are not being evaluated at this 
time in order to focus attention on the allowability of the independent claims. However, 
it is respectfully submitted that these dependent claims are allowable for at least the 
reason as depending from allowable base claims. 
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Conclusion 

For at least the foregoing reasons, Applicants submit that the rejections have 
been overcome. Therefore, claims 1-24 are in condition for allowance and such action 
is earnestly solicited. 

The Examiner is respectfully requested to contact the undersigned by 
telephone to discuss this matter if the foregoing is not deemed persuasive. 

Please charge any shortages and credit any overcharges to our Deposit Account 
number 02-2666. 



Respectfully submitted, 



Date: July 25, 2005 




/ Steven D. Yates # 42,242 / 



Patent Attorney 
Intel Corporation 
(503) 264-6589 



c/o Blakely, Sokoloff, Taylor & Zafman, LLP 
12400 Wilshire Boulevard 
Seventh Floor 

Los Angeles, CA 90025-1026 
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